Hello Lisa -
On Tue, 28 Nov 2000, Lisa Goulet wrote:
> Hi everyone,
>
> I'm trying to implement session and idle timers using radmin. My
> understanding of "Login time left" field in the editUser.pl script is the
> total login time. I need to implement a "per session" timer. I looked at
> some of the examples on the archive and came up with something like this:
>
>
> <AuthBy RADMIN>
> Identifier CheckRADMIN
> # Change DBSource, DBUsername, DBAuth for your database
> # See the reference manual. You will also have to
> # change the one in <SessionDatabse SQL> below
> # so its the same
> DBSource dbi:Pg:dbname=radmin;host=xxxxxxxxx
> DBUsername radmin
> DBAuth radmin
>
> # validate based on following criteria
> AuthSelect select PASS_WORD,STATICADDRESS, \
> MAXLOGINS,FRAMED_NETMASK,FRAMED_FILTER_ID,MAXIDLETIME \
> from RADUSERS where \
> USERNAME='%n' and BADLOGINS < 5 and \
> VALIDFROM < %t and VALIDTO > %t
> AuthColumnDef 0,Framed-IP-Netmask,reply
> AuthColumnDef 1,Filter-Id,reply
> AuthColumnDef 2,Idle-Timeout,reply
>
> AuthSelect select TIMELEFT from RADUSERS where USERNAME='%n'
> AuthColumnDef 0,Session-Timeout,reply
> AcctSQLStatement update RADUSERS set \
> TIMELEFT=TIMELEFT-0%{Acct-Session-Time} \
> where USERNAME='%n'
>
> <snip>
> </AuthBy>
>
You can only use one AuthSelect statement in an AuthBy RADMIN (or AuthBy SQL).
In the case above, the second AuthSelect is overwriting the first one in the
internal Radiator configuration - not what you want.
What do you mean by a "per session" timer?
thanks
Hugh
--
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
===
Archive at http://www.starport.net/~radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
